AICRIER_2
OPEN FEED
YOU ARE VIEWING ONE ITEM FROM THE AICRIER FEED

Apple Pay Express Transit flaw enables $10k theft

AICrier tracks AI developer news across Product Hunt, GitHub, Hacker News, YouTube, X, arXiv, and more. This page keeps the article you opened front and center while giving you a path into the live feed.

EXPLORE LATEST FEEDSEE FEATURED PICKS

// WHAT AICRIER DOES

7+

TRACKED FEEDS

24/7

SCRAPED FEED

Short summaries, external links, screenshots, relevance scoring, tags, and featured picks for AI builders.

Apple Pay Express Transit flaw enables $10k theft
OPEN LINK ↗
// 2h agoSECURITY INCIDENT

Apple Pay Express Transit flaw enables $10k theft

ANNOUNCEMENTPRODUCTPRODUCT HUNTYOUTUBE

A critical vulnerability in Apple Pay’s Express Transit mode for Visa cards allows attackers to bypass lock screens and authorize high-value transactions. Despite a high-profile demonstration by Veritasium and a recent May 2026 security patch, Apple and Visa have yet to issue a fix.

// ANALYSIS

The stalemate between Apple and Visa over who owns this security flaw is a masterclass in corporate finger-pointing at the expense of user safety. Through man-in-the-middle relay attacks, attackers can trick iPhones into authorizing large payments by spoofing transit gate signals. While Mastercard and Amex have server-side checks to prevent this, only Visa remains vulnerable. Apple's May 11 security update failed to address the exploit, leaving users to manually disable Express Transit or switch card providers. Despite a live $10,000 demo by Veritasium, Visa continues to label the attack as impractical.

// TAGS
securityresearchapple-payvisanfcvulnerabilityexploit

DISCOVERED

2h ago

2026-05-13

PUBLISHED

2h ago

2026-05-13

RELEVANCE

8/ 10

AUTHOR

Better Stack